Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions.CreditsAnanda Dhakal (Patchstack) | Patchstack Bug Bounty ProgramReferenceshttps://patchstack.com/database/wordpress/plugin/templatespare/vulnerability/wordpress-templatespare-plugin-4-2-0-arbitrary-file-upload-vulnerability?_s_id=cve
